$ rpki-client -vvf rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/2496CA7E557E11EF8AC47D15C4F9AE02.roa File: 2496CA7E557E11EF8AC47D15C4F9AE02.roa (raw, json) Hash identifier: PIT6oIMb251VM95lTdXEal0FrokTgzIUykkJbbBnksM= Subject key identifier: 36:97:BB:94:D8:E6:4C:6F:CC:FA:2A:8D:28:9C:AD:4C:11:E5:12:98 Certificate issuer: /CN=A91B861D/serialNumber=E6123F49EAEF664C22F94CD5EBBAEACED387A16F Certificate serial: 0565 Authority key identifier: E6:12:3F:49:EA:EF:66:4C:22:F9:4C:D5:EB:BA:EA:CE:D3:87:A1:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5hI_ServZkwi-UzV67rqztOHoW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/2496CA7E557E11EF8AC47D15C4F9AE02.roa Signing time: Thu 08 Aug 2024 12:02:54 +0000 ROA not before: Thu 08 Aug 2024 12:02:54 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 24567 IP address blocks: 103.146.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.crl rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5hI_ServZkwi-UzV67rqztOHoW8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1381 (0x565) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B861D/serialNumber=E6123F49EAEF664C22F94CD5EBBAEACED387A16F Validity Not Before: Aug 8 12:02:54 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=66b4b3ee-80b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e7:29:ff:36:22:a6:ee:a7:35:21:17:5f:af: 0d:cf:d7:41:14:f5:ee:af:98:52:dd:62:ee:54:7e: fe:44:ad:25:08:6a:63:1a:95:73:ad:b9:b7:40:e5: 99:eb:80:49:40:5c:4f:9b:4e:5f:b0:00:74:a4:c3: fa:da:47:34:20:86:12:a1:76:ca:34:69:26:2e:58: fc:45:f4:49:8e:cf:04:6e:f0:cf:06:bc:f4:b1:f4: 44:88:25:25:77:1a:b0:b7:c6:72:ae:6e:7d:36:40: 37:c8:2d:e8:49:b6:80:1e:f3:8d:33:b2:91:5c:ac: d9:7d:b2:62:a4:d9:e9:06:c6:27:8d:c4:22:e5:96: b7:17:fb:59:1e:87:21:7b:bd:1d:f2:fa:ce:e6:d3: 00:84:4c:b2:b0:fd:cf:79:65:b4:8a:24:f6:89:7f: 7f:f7:18:7a:63:48:3b:cb:63:37:35:1e:0a:53:d3: 11:7e:e9:b0:b6:33:1d:7a:f2:96:cf:e9:7b:cb:aa: a7:34:43:83:0e:94:8a:a1:4d:03:c1:4a:d3:a2:3e: 4c:33:26:3a:da:c2:9a:dd:b0:68:31:7d:36:be:a4: 69:33:ad:40:4d:0f:2d:df:79:a9:e7:58:5c:ce:5a: 92:5c:38:5e:bd:88:05:bc:fe:30:3a:5a:33:ca:5e: e9:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:97:BB:94:D8:E6:4C:6F:CC:FA:2A:8D:28:9C:AD:4C:11:E5:12:98 X509v3 Authority Key Identifier: keyid:E6:12:3F:49:EA:EF:66:4C:22:F9:4C:D5:EB:BA:EA:CE:D3:87:A1:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5hI_ServZkwi-UzV67rqztOHoW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/2496CA7E557E11EF8AC47D15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.209.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:15:ff:62:54:8f:73:5d:cb:da:2b:2a:ee:c0:0f:74:f2:0f: 7d:98:56:68:4d:f6:01:93:da:df:c9:48:01:05:06:70:a6:51: 60:f4:6f:11:9a:84:85:56:c6:3f:2d:ef:63:cc:a9:33:36:70: a0:13:88:a9:7e:81:9e:b0:45:2b:63:c3:f9:1b:97:6c:83:a0: 24:e7:b2:de:10:36:2c:4e:af:a7:cd:b2:61:43:1c:7c:d0:27: d7:46:96:88:14:06:44:da:d4:d3:a0:16:1a:90:40:0e:f5:2d: b2:99:52:df:05:a2:30:b5:e7:86:00:74:47:23:4e:f4:ce:3c: 2e:eb:7c:de:9b:df:92:b2:dc:a9:09:36:fb:6d:a0:22:b9:9f: 73:fe:02:10:63:f3:5d:21:26:4e:2a:59:66:27:9b:fb:3b:1a: 91:c2:01:c2:2a:82:d7:4e:6f:f5:ee:de:3d:fc:69:de:85:7e: 9d:7b:d4:b3:b4:d9:80:6a:47:8d:64:20:4f:56:e8:2d:1f:7f: 3a:fb:98:8e:2a:71:f0:6b:88:67:06:d7:50:a3:04:7c:c8:15: f2:91:a6:42:d2:35:44:9e:bf:56:49:84:74:8e:25:a0:5b:bf: 9c:38:9a:cc:dd:16:4d:71:30:95:d6:90:1d:7a:d8:c6:48:7d: df:ce:3d:15 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg2MUQxMTAvBgNVBAUTKEU2MTIzRjQ5RUFFRjY2NEMyMkY5NENENUVCQkFFQUNF RDM4N0ExNkYwHhcNMjQwODA4MTIwMjU0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI0YjNlZS04MGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo+cp/zYipu6nNSEXX68Nz9dBFPXur5hS3WLuVH7+RK0lCGpjGpVzrbm3QOWZ 64BJQFxPm05fsAB0pMP62kc0IIYSoXbKNGkmLlj8RfRJjs8EbvDPBrz0sfREiCUl dxqwt8Zyrm59NkA3yC3oSbaAHvONM7KRXKzZfbJipNnpBsYnjcQi5Za3F/tZHoch e70d8vrO5tMAhEyysP3PeWW0iiT2iX9/9xh6Y0g7y2M3NR4KU9MRfumwtjMdevKW z+l7y6qnNEODDpSKoU0DwUrToj5MMyY62sKa3bBoMX02vqRpM61ATQ8t33mp51hc zlqSXDhevYgFvP4wOlozyl7pJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDaXu5TY 5kxvzPoqjSicrUwR5RKYMB8GA1UdIwQYMBaAFOYSP0nq72ZMIvlM1eu66s7Th6Fv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODYxRC9EMjk5N0Y2MEFC RTMxMUVCOUMyQjExNTZDNEY5QUUwMi81aElfU2Vydlprd2ktVXpWNjdycXp0T0hv VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVoSV9TZXJ2Wmt3aS1VelY2N3JxenRPSG9XOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjg2MUQvRDI5OTdGNjBBQkUzMTFFQjlDMkIxMTU2QzRGOUFFMDIvMjQ5NkNBN0U1 NTdFMTFFRjhBQzQ3RDE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnktEwDQYJKoZIhvcNAQELBQADggEBAI4V/2JUj3Ndy9or Ku7AD3TyD32YVmhN9gGT2t/JSAEFBnCmUWD0bxGahIVWxj8t72PMqTM2cKATiKl+ gZ6wRStjw/kbl2yDoCTnst4QNixOr6fNsmFDHHzQJ9dGlogUBkTa1NOgFhqQQA71 LbKZUt8FojC154YAdEcjTvTOPC7rfN6b35Ky3KkJNvttoCK5n3P+AhBj810hJk4q WWYnm/s7GpHCAcIqgtdOb/Xu3j38ad6Ffp171LO02YBqR41kIE9W6C0ffzr7mI4q cfBriGcG11CjBHzIFfKRpkLSNUSev1ZJhHSOJaBbv5w4mszdFk1xMJXWkB162MZI fd/OPRU= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:49 2024 by rpki-client on console-ams.rpki-client.org